CVE-2025-55739 | FreePBX up to 15.0.12/16.0.14/17.0.2 OAuth hard-coded credentials (GHSA-3r47-p39v-vqqf)

A vulnerability categorized as critical has been discovered in FreePBX up to 15.0.12/16.0.14/17.0.2. Affected by this issue is some unknown functionality of the component OAuth. Executing manipulation can lead to hard-coded credentials.

This vulnerability appears as CVE-2025-55739. The attack may be performed from remote. There is no available exploit.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More